BigID

AI Model Inventory

Centralized registry of all AI/ML models in use across the organization, with ownership, lifecycle stage, and risk classification.

Risk Assessment Workflow

Guided workflows for completing AI impact assessments, risk scoring, and approval routing.

Policy Management

Authoring, versioning, and distribution of AI usage policies mapped to regulations.

Data Lineage

Tracking the origin, movement, transformations, and consumers of data used to train and serve AI systems — required for EU AI Act Article 10 data governance and GDPR Article 30 record-keeping.

Audit Logging

Tamper-evident logging of governance events (approvals, model changes, policy decisions) required by EU AI Act Article 12 and similar regulations.

Third-Party AI Vendor Risk

Intake and assessment of AI features in third-party SaaS used by the organization.

Regulatory Intelligence

Ongoing tracking of AI laws, standards, and enforcement, mapped to your model inventory.

LLM Guardrails

Runtime input/output filtering for LLMs — PII redaction, toxicity blocking, prompt injection defense, policy enforcement.

Bias & Fairness Testing

Automated statistical testing for disparate impact across protected attributes, with audit-ready reports.

Third-Party AI Risk Management

Due diligence and ongoing monitoring of AI vendors, subprocessors, and foundation model providers against compliance and security criteria.

Audit Evidence Collection

Automated collection, hashing, and retention of evidence (model cards, test results, approvals) for audit.